top | item 41727737

(no title)

seymon | 1 year ago

There is the open source software project gluetun, that allows setting up a containers that are only able to communicate through a vpn network interface in an easy way.

https://github.com/qdm12/gluetun

With this it is not much effort to set up qbittorrent in a privacy secure way.

discuss

3np|1 year ago

gluetun can be great for many other use-cases, but what I said still stands regarding udp p2p like bittorrent. You are very likely to get surprises like GP unless you are very lucky or really know what you are doing wrt the actual networking configuration.

harshreality|1 year ago

If the VPN container does things correctly and kills the default non-vpn route, how would those surprises occur? To be clear, I hope 3np is talking about containers like the following, and not trying to proxy only udp or only tcp piecemeal.

    services:
      vpncontainer:
        image: <whatever>
        container_name: vpncontainer
        cap_add: [NET_ADMIN]

      vpn-qbittorrent:
        image: lscr.io/linuxserver/qbittorrent:latest
        container_name: vpn-qbittorrent
        network_mode: service:vpncontainer

      # and optionally, for other purposes, not qbittorrent above
      vpn-socks:
        image: serjs/go-socks5-proxy
        container_name: vpn-socks
        network_mode: service:vpncontainer

      # environments, volumes, ports, systctls, port-fwd helpers omitted